Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/78dcc5-0aee-447d-8f51-65e521b571e1/1/Ncn3ZwxTcM-YPMt3hicaExgcvMM.roa
File: Ncn3ZwxTcM-YPMt3hicaExgcvMM.roa (raw, json)
Hash identifier: r+/5c5/lUbqAdwzpPNsiF8ZAPIYXhpkmtVVwbf5EmVU=
Subject key identifier: 35:C9:F7:67:0C:53:70:CF:98:3C:CB:77:86:27:1A:13:18:1C:BC:C3
Certificate issuer: /CN=0164cc6acf5aebf172639b95175a3b586c1fe261
Certificate serial: 065B7B04
Authority key identifier: 01:64:CC:6A:CF:5A:EB:F1:72:63:9B:95:17:5A:3B:58:6C:1F:E2:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWTMas9a6_FyY5uVF1o7WGwf4mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/78dcc5-0aee-447d-8f51-65e521b571e1/1/Ncn3ZwxTcM-YPMt3hicaExgcvMM.roa
Signing time: Sat 01 Jan 2022 07:53:25 +0000
ROA not before: Sat 01 Jan 2022 07:53:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 85.202.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106658564 (0x65b7b04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0164cc6acf5aebf172639b95175a3b586c1fe261
Validity
Not Before: Jan 1 07:53:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35c9f7670c5370cf983ccb7786271a13181cbcc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:73:26:c8:35:c4:96:f8:63:92:c0:1d:96:93:
dc:d8:5b:e4:bb:81:db:bf:a7:2f:1a:e5:bb:91:de:
72:96:de:7c:39:f7:77:f6:9a:ff:91:ae:22:07:30:
5c:9a:1d:6b:b8:98:5c:0b:35:bc:ce:04:6f:05:d6:
a2:08:e3:37:a8:1c:e8:29:76:4c:06:f3:a5:23:02:
17:10:43:4d:d6:39:10:e8:35:6c:31:a7:51:f9:58:
a6:4f:24:72:43:37:d1:af:94:e2:e6:68:e1:d6:0c:
54:26:14:ed:96:d4:8b:5e:78:65:90:28:bb:a8:a9:
6d:9f:60:b4:ea:72:90:18:72:f6:97:82:fb:48:3f:
66:88:eb:6b:24:5e:c2:21:9b:d4:95:ae:56:47:5b:
d5:2e:86:77:ca:7b:a1:83:37:16:41:39:e5:ad:0c:
10:a6:25:99:70:08:dd:f4:20:59:07:b3:ec:5e:a0:
4b:09:03:e8:3c:2f:e3:30:34:1b:57:f0:78:a2:7e:
85:53:49:a5:d9:df:ed:87:a6:a1:03:ac:26:2c:f5:
f6:1e:b4:8a:b6:4e:ab:dd:a7:94:39:e8:7f:71:4f:
c4:09:88:30:4f:db:3f:80:a1:c1:f9:5a:3c:71:ef:
ef:25:c9:af:52:89:0a:61:55:bd:30:bb:52:8c:c4:
78:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C9:F7:67:0C:53:70:CF:98:3C:CB:77:86:27:1A:13:18:1C:BC:C3
X509v3 Authority Key Identifier:
keyid:01:64:CC:6A:CF:5A:EB:F1:72:63:9B:95:17:5A:3B:58:6C:1F:E2:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWTMas9a6_FyY5uVF1o7WGwf4mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/78dcc5-0aee-447d-8f51-65e521b571e1/1/Ncn3ZwxTcM-YPMt3hicaExgcvMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/78dcc5-0aee-447d-8f51-65e521b571e1/1/AWTMas9a6_FyY5uVF1o7WGwf4mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.203.0/24
Signature Algorithm: sha256WithRSAEncryption
98:d3:cd:83:ce:dd:32:c1:3a:4b:78:25:56:8a:7d:d6:9f:5e:
a6:16:24:59:d3:f5:41:f6:4e:7b:27:6e:d6:78:33:0b:ff:33:
94:c0:d5:a6:e0:e3:0b:50:78:a0:fd:b9:de:02:71:9a:b8:46:
e6:69:70:fb:a4:fd:d3:f0:04:e8:08:20:76:81:39:84:55:ff:
9f:45:c5:a0:24:11:0e:36:77:7f:b9:e4:ee:4d:6d:7d:b6:53:
e7:12:b4:dd:ee:0b:71:3a:b9:1e:f6:eb:bc:20:2f:81:0d:2f:
bc:bd:37:a4:b3:f9:b4:9e:c8:62:8c:51:e3:4d:e6:2f:20:d5:
32:34:71:cf:34:7d:73:b3:11:c3:0f:cd:3a:24:d7:99:c0:79:
fc:ff:d7:79:0e:62:a2:a9:25:ab:47:44:d3:07:89:a0:c0:ee:
6d:40:55:2c:54:b5:c3:59:92:76:72:39:b0:04:66:cc:09:0e:
95:16:60:3d:0e:b4:85:9c:53:63:1e:c8:93:47:e5:09:d8:68:
1f:d2:3e:be:e4:fb:2e:01:d5:5c:29:8e:1a:44:66:42:bf:7b:
a3:c9:5d:45:7d:cf:58:75:e2:e6:e6:db:c5:1b:ef:d7:30:19:
93:72:01:cc:ad:90:e8:9d:83:95:ec:fc:53:44:85:89:72:6b:
65:51:55:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:24 2024 by rpki-client on console-ams.rpki-client.org